whoarethey: Determine Who Can Log In to an SSH Server
https://www.agwa.name/blog/post/whoarethey [www.agwa.name]
2023-01-11 04:12
tags:
networking
opsec
security
As a proof of concept, I’ve created whoarethey, a small Go program that takes the hostname:port of an SSH server, an SSH username, and a list of GitHub usernames, and prints out the GitHub username which is authorized to connect to the server.
source: HN
Fixing the Breakage from the AddTrust External CA Root Expiration
https://www.agwa.name/blog/post/fixing_the_addtrust_root_expiration [www.agwa.name]
2020-05-30 21:52
tags:
admin
networking
security
web
A lot of stuff on the Internet is currently broken on account of a Sectigo root certificate expiring at 10:48:38 UTC today. Generally speaking, this is affecting older, non-browser clients (notably OpenSSL 1.0.x) which talk to TLS servers which serve a Sectigo certificate chain ending in the expired certificate. See also this Twitter thread by Ryan Sleevi.
https://twitter.com/sleevi_/status/1266647545675210753
source: HN